Ransomware victim disclosure
← All victimsPamyra GmbH
listed as Gitlabs: Acqua development, QBurst, Pamyra.de · Claimed by Fog · listed 1 year ago
Status timeline
- ListedFeb 16, 2025
- Data leakeddate unknown
At a glance
- Group
- Fog
- Status
- Data leaked
- Country
- Germany
- Sector
- Technology
- Listed on leak site
- Feb 16, 2025
About the victim
AI dossier — public-source company profilePamyra.de is a German online platform that aggregates and compares shipping and freight services (Spedition) across Europe. It enables private and commercial customers to compare prices and book transportation services for parcels, pallets, furniture, machinery and other freight across Germany, Austria, Switzerland and broader Europe.
- Industry
- Logistics & Transportation Price Comparison
Attack summary
Severity: medium — Data published status confirms exfiltration, but no proof files are advertised and no specific sensitive data categories (PII at scale, financial records, regulatory data) are confirmed. The nature and volume of compromised data from a logistics comparison platform is moderate concern.The Fog group claims to have compromised Pamyra.de and at least two other technology firms (Acqua Development and QBurst). The leak post indicates data disclosure but provides no specific details about what data was exfiltrated or whether systems were encrypted.
Data the group says was taken
AI dossier — extracted from the leak post- Customer booking records
- Business transaction data
- User account information
Original description
AI-summarised, not from the leak postGitlabs: Acqua development, QBurst, Pamyra.de refers to a combination of several tech companies. GitLab, a web-based DevOps lifecycle tool that provides a Git-repository manager, is pivotal. Acqua Development creates personalized software solutions, while QBurst provides development services across digital platforms. Pamyra.de, on the other hand, is a German online shipping price comparison portal, focusing on courier, express and parcel services.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

